Today, wireless networks are extremely popular in all offices, industrial parks, homes, and schools. However, due to the nature of network technology, an authentication solution is needed to prevent unauthorized access. On the other hand, at universities, due to the large number of users, the network security solution using WPA password becomes not feasible. Therefore, we propose a solution to authenticate wireless network security with Captive Portal technology combined with RADIUS authentication method. Captive Portal is a technology that allows controlling and restricting all access using HTTP protocol from the browser. Users on the network will be redirected to a portal for authentication before being allowed to access the internet. RADIUS is a network service that enables authentication and authorization for users on the network. This article will present and simulate the combination of Captive portal feature on pfsense firewall with an active directory server to provide RADIUS user authentication service for ICT - Thai Nguyen university's wireless network.

[1]. A. H. Lashkari, M. M. S. Danesh, and B. Samadi, “A Survey on Wireless Security protocols (WEP,WPA and WPA2/802.11i),” IEEE ICCSIT 2009. 2nd IEEE International Conference, Aug. 2009, pp. 48-52.

[2]. G. Appenzeller, M. Roussopoulos, and M. Baker, “User-Friendly Access Control for Public Network Ports,” IEEE INFOCOM '99. Eighteenth Annual Joint Conference, vol. 2, pp. 699-707, Mar. 1999.

[3]. IEEE 802.1 Working Group, 802.1X – port based network access control, 2001

[4]. C. Rigney, A. Rubens, W. Simpson, and S. Willens, Remote Authentication Dial in User Service (RADIUS), RFC2865. Jun. 2000.